The Register
23andMe hit with £2.3M fine after exposing genetic data of millions
The UK's data watchdog is fining beleaguered DNA testing outfit 23andMe £2.31 million ($3.13 million) over its 2023 mega breach.…
Scattered Spider has moved from retail to insurance
Cyber-crime crew Scattered Spider has infected US insurance companies following a series of ransomware attacks against American and British retailers, according to Google, which urged this sector to be on "high alert."…
Remorseless extortionists claim to have stolen thousands of files from Freedman HealthCare
An extortion gang claims to have breached Freedman HealthCare, a data and analytics firm whose customers include state agencies, health providers, and insurance companies, and is threatening to dump tens of thousands of sensitive files early Tuesday morning.…
Canada's WestJet says 'expect interruptions' online as it navigates cybersecurity turbulence
Canadian airline WestJet is warning of "intermittent interruptions or errors" on its app and website as it investigates a cybersecurity incident.…
Eurocops arrest suspected Archetyp admin, shut down mega dark web drug shop
Operation Deep Sentinel is the latest international law enforcement collaboration against cybercrime, shutting down Archetyp – one of the largest dark web drug marketplaces.…
Salesforce study finds LLM agents flunk CRM and confidentiality tests
A new benchmark developed by academics shows that LLM-based AI agents perform below par on standard CRM tests and fail to understand the need for customer confidentiality.…
Microsoft adds export option to Windows Recall in Europe
Updated Windows 11 users in the European Economic Area will shortly receive a new Recall Export feature, allowing Recall snapshots to be shared with third-party apps and websites.…
Spy school dropout: GCHQ intern jailed for swiping classified data
A former GCHQ intern was jailed for seven-and-a-half years for stealing top-secret files during a year-long placement at the British intelligence agency.…
How collaborative security can build you a better business
Sponsored Post Here's a sobering reality: 95% of data breaches involve human error. So, why do most organizations still throw technology at a fundamentally human problem? It's like trying to fix a leaky roof by buying better buckets.…
Armored cash transport trucks allegedly hauled money for $190 million crypto-laundering scheme
Asia In Brief Australia’s Federal Police (AFP) last week announced charges against four suspects for alleged participation in a money-laundering scheme that involved a security company’s armored cash transport unit.…
Dems demand audit of CVE program as Federal funding remains uncertain
Infosec In Brief A pair of Congressional Democrats have demanded a review of the Common Vulnerabilities and Exposures (CVE) program amid uncertainties about continued US government funding for the scheme.…
Cyber weapons in the Israel-Iran conflict may hit the US
The current Israel–Iran military conflict is taking place in the era of hybrid war, where cyberattacks amplify and assist missiles and troops, and is being waged between two countries with very capable destructive cyber weapons.…
Do you trust Xi with your 'private' browsing data? Apple, Google stores still offer China-based VPNs, report says
Both Apple's and Google's online stores offer free virtual private network (VPN) apps owned by Chinese companies, according to researchers at the Tech Transparency Project, and they don't make this fact readily known to people downloading the apps.…
Apple fixes zero-click exploit underpinning Paragon spyware attacks
Apple has updated its iOS/iPadOS 18.3.1 documentation, confirming it introduced fixes for the zero-click vulnerability used to infect journalists with Paragon's Graphite spyware.…
Wanted: Junior cybersecurity staff with 10 years' experience and a PhD
Cybersecurity hiring managers need a reality check when it comes to hiring junior staff, with job adverts littered with unfair expectations that are hampering recruitment efforts, says industry training and cert issuer ISC2.…
Slapped wrists for Financial Conduct Authority staff who emailed work data home
Four staffers at the UK's Financial Conduct Authority (FCA) were let off with warnings over separate cases involving the transmission of regulator data to their personal email accounts.…
Ransomware scum disrupted utility services with SimpleHelp attacks
Ransomware criminals infected a utility billing software providers' customers, and in some cases disrupted services, after exploiting unpatched versions of SimpleHelp’s remote monitoring and management (RMM) tool, according to a Thursday CISA alert.…
'Major compromise' at NHS temping arm exposed gaping security holes
Exclusive Cybercriminals broke into systems belonging to the UK's NHS Professionals body in May 2024, stealing its Active Directory database, but the healthcare organization never publicly disclosed it, The Register can reveal.…
DeepSeek installer or just malware in disguise? Click around and find out
Suspected cybercriminals have created a fake installer for Chinese AI model DeepSeek-R1 and loaded it with previously unknown malware called "BrowserVenom".…
Hire me! To drop malware on your computer
In a scam that flips the script on fake IT worker schemes, cybercriminals posing as job seekers on LinkedIn and Indeed are targeting recruiters - a group hated only slightly less than digital crooks - with malware hosted on phony resume portfolio sites.…